I’ve heard VLAN hopping is nearly obsolete these days assuming core switches (Cisco) are up to date on IOS. What are the security risks I’m missing here?

Even if someone manages to get a double tagged packet through, wouldn’t the attacker have to know the core network subnet? Also, wouldn’t the attacked be blind since there is no route back to the original VLAN? Any advice would be greatly appreciated.

network scenario: we have 3 core switches.STP root bridge for vlan 80 and vlan 61 is core 3 switch problem: when traceroute from vlan 50 to vlan 80 I can traceroute to vlan 80 clients but not for vlan 80 default gateway. for vlan 80 default gateway is core 1 192.168.21.252, core2 is 192.168.21.251, core3 192.168.21.253.(No HSRP for vlan 80) for vlan 50 default gateway is core 1 10.10.30.253 core 2 no ip core 3 10.10.30.252 (default gateway for all vlan 61 hosts)(no hsrp) when i trace route to vlan 80 any ip from vlan 50 any ip it shows the route 192.168.21.252. when i trace route to vlan 80 default gateway 192.168.21.253(which is the default gateway for all host in the vlan 80) i could not get traceroute. for all other vlans except vlan 50 there is no problem found. please suggest.

vlan 50 client configuraton “

no service pad service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! no aaa new-model

]]>http://itknowledgeexchange.techtarget.com/itanswers/cisco-access-point/feed/0My Aironet 1200 want Pass DHCP.http://itknowledgeexchange.techtarget.com/itanswers/my-aironet-1200-want-pass-dhcp/
http://itknowledgeexchange.techtarget.com/itanswers/my-aironet-1200-want-pass-dhcp/#commentsThu, 24 Sep 2009 16:55:59 +0000I got a question for. I have a Cisco Aironet 1200 Access Point. I set it up and gave it an IP Address of 10.0.0.0. So I can access from my PC witch that works great. Then I got a Laptop and try to access the internet from the wireless card. And that work great. But it did not ask me for a Key to logon to my net work. So I turn on the WEP on the access point and gave it a key number . Now when I try to access it. The Access Point ask me for the Key like I wanted to do. The Access Point lets me logon now. But it’s not passing DHCP. Without that I can’t logon on to the Internet. Everything work be for I turn on WEP. Do you know what I need to do to get this to work
]]>http://itknowledgeexchange.techtarget.com/itanswers/my-aironet-1200-want-pass-dhcp/feed/2Networking cisco access pointhttp://itknowledgeexchange.techtarget.com/itanswers/networking-cisco-access-point/
http://itknowledgeexchange.techtarget.com/itanswers/networking-cisco-access-point/#commentsTue, 01 Sep 2009 06:47:20 +0000i am working on cisco access point 1242

i had default username cisco and password Cisco but when i deleted and changed a new user name and password xxxx what happen,

i can telnet through cli mode with new username and password but when i try to take http access the access point take old password while old password is deleted. ( I deleted all the internet cookies and password from internet explorer) what to do please suggest